Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
File: KUJPgsfIL8VJlTLlpmUadPYpxao.mft (raw, json)
Hash identifier: SOHV9iglQ+dERz1axXhJRGhtBQBz+SFpHIuVpGp6x1g=
Subject key identifier: B9:D2:CA:D4:A1:D2:CD:B3:34:7E:86:DD:B7:29:6A:08:EE:5C:FE:D5
Authority key identifier: 29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
Certificate issuer: /CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Certificate serial: 019D26CD1600A7A62719511B2079C77A7FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
Manifest number: 0C60
Signing time: Wed 25 Mar 2026 21:01:07 +0000
Manifest this update: Wed 25 Mar 2026 21:01:07 +0000
Manifest next update: Thu 26 Mar 2026 21:01:07 +0000
Files and hashes: 1: 5qyuI5ThHH3azcrMiZNkaa5sMNI.roa (hash: fmjgPwlAX7M+XSOUbCHllncTYtDZa0t8AvCNpNZSKEk=)
2: KUJPgsfIL8VJlTLlpmUadPYpxao.crl (hash: /HSVQf3b8fj+pcFoo+FXhicDTD4AbJkE4WMMUJiwshs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:16:00:a7:a6:27:19:51:1b:20:79:c7:7a:7f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Validity
Not Before: Mar 25 21:01:07 2026 GMT
Not After : Mar 26 21:01:07 2026 GMT
Subject: CN=b9d2cad4a1d2cdb3347e86ddb7296a08ee5cfed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0f:c9:2a:b2:06:4e:42:d5:db:16:c6:c9:01:
d1:3e:d9:90:ec:1f:0d:67:ab:ab:3a:3e:37:a3:57:
0d:6f:e1:2d:2b:fe:67:17:9c:c2:74:5f:ea:66:41:
80:82:7c:ad:fc:54:7a:3f:85:94:f4:7b:3a:ef:c4:
4c:d0:74:d3:88:58:10:86:a8:33:71:7e:4f:73:58:
19:3e:ea:02:f6:f0:d2:8d:9a:32:50:cc:8d:3b:6b:
1a:f7:b6:8b:b6:61:80:23:4e:f7:ac:2e:c3:96:1c:
b1:aa:ab:e7:f0:a9:dc:6f:6f:21:10:da:b7:44:af:
78:bd:d9:be:d3:0c:a4:4a:88:64:f0:d6:53:da:3c:
e8:6f:94:11:8b:cf:af:ec:d1:f7:d0:41:aa:4d:2d:
e3:9a:f7:02:d2:99:db:74:47:e1:a6:14:ed:4d:20:
f6:ed:24:29:e0:0e:a1:0f:04:fc:49:4e:ca:1a:31:
14:a6:c4:b1:b4:31:09:24:ab:a3:30:01:a0:7b:c6:
76:4b:3e:4d:9f:65:ad:3e:23:e2:4b:4e:1b:11:7f:
f8:3b:67:88:b6:3b:ff:05:32:fd:73:bd:56:1d:7e:
fb:a5:45:70:09:11:dd:e0:56:21:31:27:37:8d:9b:
3b:28:4a:db:1b:58:81:3e:eb:88:06:ea:0b:62:24:
09:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D2:CA:D4:A1:D2:CD:B3:34:7E:86:DD:B7:29:6A:08:EE:5C:FE:D5
X509v3 Authority Key Identifier:
keyid:29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:1a:38:ff:7e:7d:6e:dc:b3:51:1e:0f:80:5d:7d:e6:ee:d9:
6d:32:c6:cf:77:72:53:03:07:fb:ce:92:a1:66:09:0e:ef:a1:
2e:14:8b:d2:29:01:99:bb:08:75:77:6b:3b:1a:5c:7c:c2:59:
db:d2:3f:79:83:05:43:f9:1d:af:c1:96:c3:d5:54:ed:25:99:
f8:17:b5:7f:61:0e:d2:e0:ac:85:fb:56:78:33:aa:0a:7e:c1:
8c:c5:65:6a:0b:b8:a7:35:60:16:76:8a:ee:f4:08:0d:22:e1:
fc:b8:54:2f:de:14:ce:b2:ad:84:2a:26:cc:44:7b:6a:0b:e0:
ab:53:5a:d1:30:c5:11:ea:47:e2:92:fb:0d:24:25:26:15:4d:
54:ff:2b:3c:d8:fb:c6:47:2c:d6:7e:42:cd:6c:4e:aa:75:d6:
4a:e9:a9:2d:ef:7e:07:14:30:37:84:d0:f8:da:c0:70:a2:d8:
5d:35:2c:e2:24:4c:2d:12:61:10:33:4b:0a:36:c3:d1:49:85:
1c:c0:78:56:14:ed:a2:3c:89:7a:5d:c5:a2:77:11:93:60:df:
f0:e1:41:ee:65:4d:7b:e9:e0:1e:c3:80:51:ab:08:1f:08:86:
bd:2e:1b:15:8d:11:ad:ef:3b:bd:a3:df:b4:72:bc:11:73:d9:
48:65:34:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:16:41 2026 by rpki-client